Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Sling Commons Log
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32549 1 Apache 2 Sling Api, Sling Commons Log 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Apache Sling Commons Log <= 5.4.0 and Apache Sling API <= 2.25.0 are vulnerable to log injection. The ability to forge logs may allow an attacker to cover tracks by injecting fake logs and potentially corrupt log files.